SQL Server security sits at the apex of the database management food chain. Performance, scalability, availability, and recoverability are all moot if you’re the victim of a ransomware attack. Here are Straight Path Solutions, securing our clients’ databases is our top priority. We’ve put together this resource page as a single point of reference for all of our SQL Server security tools and blog posts.
Jump to…
- sp_CheckSecurity – Our free, downloadable SQL Server tool.
- Blog posts about SQL Server security
If you’d like to be notified when we publish new tools or blog posts, be sure to sign up for our newsletter…
Subscribe for Updates
sp_CheckSecurity
This is one of our free SQL Server tools for SQL Server Database Administrators (or people who play DBA at their organization) to check the security of their SQL Servers. It is used to detect security vulnerabilities and discrepancies in SQL Server instances.
Learn MoreSQL Server Security Blog Posts
Your Silent Face: The Illusion of the Safety of “Never Patching” Your SQL Servers.
No hearing, or breathing… No movement, no colors… Just silence… Sounds peaceful. Sounds serene. And in a world where entropy didn’t exist, it could even stay that way. That’s not our world, though. Our SQL Servers (in whatever flavor they exist) don’t live in utopia. They live in a world where bad actors are trying … Read more
SQL Server Vulnerability Alert: CVE-2025-49719
On patch Tuesday this week, Microsoft released an Important severity security update (a CVSS base score of 7.5) The details of this 0-day exploit are available to read at the NIST site, and the Microsoft security update site. In short, the exploit that Microsoft has discovered and subsequently fixed can allow information disclosure. (That’s the … Read more
Managing Orphaned Users in SQL Server with sp_FindOrphanedUser
Addressing orphaned users is an important piece of SQL Server security management. When left unchecked, you can accumulate an overwhelming number of users that exist in a database but do not have a correlating login in the master database, thus preventing access to the server or the database at all. There are dbatools PowerShell modules … Read more
SQL Server Security: 3 Homework Assignments to Start Today
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Thanks … Read more
SQL Injection: Deconstructing an Attack
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. As … Read more
Enhancing SQL Server Security: Reviewing and Optimizing Audits
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Audits … Read more
Your SQL Server Database Owner Might be Causing Privilege Escalation
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. SQL … Read more
What the SQL Server TDE Certificate Expiration Date Does (and does not) Mean
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Transparent … Read more
Fixing SQL Server Vulnerabilities With GDRs
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. For … Read more